Thanks a lot.. i will check that next week.

Le 23 mai 2013 15:07, "Dan Lavu" <> a écrit :
I went ahead and modified /etc/security/ldap/ldap.cfg directly 
*Note* Any passwords you use, MUST BE HASHED using mksecldap or some obscure command like that

There is /var/lib/security/method.cfg which defines LDAP, make sure your module is in there, you can create your own modules if you want to, i.e. AUTH against KRB and find your user base in LDAP… but unlike nsswitch it does not determine a priority it just says modules are here. 

Lastly /etc/security/user, you need to change two args, SYSTEM (auth if you are familiar with pam) and registry (account) and point to the method in methods.cfg 

If you are using SSL which you should, you need to create the cert db using some obscure gui command. 

I essentially followed the IPA instructions and omitted the krb5 settings.

Hope this helps.

On May 23, 2013, at 6:54 AM, Dan Lavu <> wrote:

Are you still having issues with this? I just setup my first AIX client yesterday. 

On Apr 16, 2013, at 2:35 AM, alexandre <> wrote:

Hi Paul,

do you know the AIX client configuration to use with 389DS ?


2013/4/15 Paul Robert Marino <>
Its been a long time since I used an AIX box but I don't think AIX uses Pam, so it would be different, that said it should be possible but I'm not sure of the details on how to set it up. Worse come to worse look at some of the old sun one and Netscape docs they would cover AIX clients and should be at least mostly still accurate.

-- Sent from my HP Pre3

On Apr 15, 2013 10:58 AM, alexandre <> wrote:


just to know if somebody try to use an AIX client against 389DS ?

I know it's possible with Solaris. It is the same way to use AIX client (nsswitch.conf and pam configuration)?

Best regards,

389 users mailing list

389 users mailing list

389 users mailing list